US7793347B2 - Method and system for validating a computer system - Google Patents
Method and system for validating a computer system Download PDFInfo
- Publication number
- US7793347B2 US7793347B2 US11/053,080 US5308005A US7793347B2 US 7793347 B2 US7793347 B2 US 7793347B2 US 5308005 A US5308005 A US 5308005A US 7793347 B2 US7793347 B2 US 7793347B2
- Authority
- US
- United States
- Prior art keywords
- integrity check
- check program
- computer system
- determined
- execution
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active, expires
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Debugging And Monitoring (AREA)
- Test And Diagnosis Of Digital Computers (AREA)
Abstract
Description
Claims (49)
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/053,080 US7793347B2 (en) | 2005-02-07 | 2005-02-07 | Method and system for validating a computer system |
CN2006800114167A CN101176069B (en) | 2005-02-07 | 2006-02-03 | Method for operating a computer system |
PCT/US2006/004095 WO2006086302A1 (en) | 2005-02-07 | 2006-02-03 | Method and system for validating a computer system |
TW095103880A TWI384356B (en) | 2005-02-07 | 2006-02-06 | Method and system for validating a computer system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/053,080 US7793347B2 (en) | 2005-02-07 | 2005-02-07 | Method and system for validating a computer system |
Publications (2)
Publication Number | Publication Date |
---|---|
US20060179483A1 US20060179483A1 (en) | 2006-08-10 |
US7793347B2 true US7793347B2 (en) | 2010-09-07 |
Family
ID=36781405
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US11/053,080 Active 2028-06-27 US7793347B2 (en) | 2005-02-07 | 2005-02-07 | Method and system for validating a computer system |
Country Status (4)
Country | Link |
---|---|
US (1) | US7793347B2 (en) |
CN (1) | CN101176069B (en) |
TW (1) | TWI384356B (en) |
WO (1) | WO2006086302A1 (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110131403A1 (en) * | 2008-08-01 | 2011-06-02 | Hewlett-Packard Developement Company, Lp | Verifying firmware |
US20130227264A1 (en) * | 2012-02-24 | 2013-08-29 | Samsung Electronics Co. Ltd. | Integrity protection method and apparatus for mobile terminal |
US8931096B2 (en) | 2008-10-29 | 2015-01-06 | International Business Machines Corporation | Detecting malicious use of computer resources by tasks running on a computer system |
US11856593B2 (en) | 2012-01-20 | 2023-12-26 | Intellectual Ventures Holding 81 Llc | Communication in a wireless network using restricted bandwidths |
Families Citing this family (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1717704A3 (en) * | 2005-04-20 | 2011-07-20 | St Microelectronics S.A. | Protection of program execution performed by an integrated circuit |
US7600259B2 (en) * | 2005-06-08 | 2009-10-06 | Symantec Corporation | Critical period protection |
US7516246B2 (en) * | 2005-10-27 | 2009-04-07 | International Business Machines Corporation | Communications channel method for verifying integrity of untrusted subsystem responses to a request |
US7904278B2 (en) * | 2006-05-02 | 2011-03-08 | The Johns Hopkins University | Methods and system for program execution integrity measurement |
EP1881404A1 (en) * | 2006-07-20 | 2008-01-23 | Gemplus | Method for dynamic protection of data during intermediate language software execution in a digital device |
US20080126779A1 (en) * | 2006-09-19 | 2008-05-29 | Ned Smith | Methods and apparatus to perform secure boot |
US20080163212A1 (en) * | 2006-12-29 | 2008-07-03 | Zimmer Vincent J | Paralleled management mode integrity checks |
US8561176B1 (en) * | 2007-01-24 | 2013-10-15 | Mcafee, Inc. | System, method and computer program product for monitoring and/or analyzing at least one aspect of an invocation of an interface |
US8375219B2 (en) * | 2007-10-24 | 2013-02-12 | Microsoft Corporation | Program and operation verification |
US20090133097A1 (en) * | 2007-11-15 | 2009-05-21 | Ned Smith | Device, system, and method for provisioning trusted platform module policies to a virtual machine monitor |
US20100077472A1 (en) * | 2008-09-23 | 2010-03-25 | Atmel Corporation | Secure Communication Interface for Secure Multi-Processor System |
DE102011108077A1 (en) * | 2010-08-13 | 2012-03-22 | Lfk-Lenkflugkörpersysteme Gmbh | Method of memory management in a multitasking data processing system |
US20130061328A1 (en) * | 2011-09-06 | 2013-03-07 | Broadcom Corporation | Integrity checking system |
US9135131B2 (en) * | 2012-02-16 | 2015-09-15 | National Instruments Corporation | Customizing operation of a test instrument based on information from a system under test |
US9703950B2 (en) * | 2012-03-30 | 2017-07-11 | Irdeto B.V. | Method and system for preventing and detecting security threats |
CN104981814B (en) * | 2013-03-15 | 2018-08-14 | 英特尔公司 | Security coprocessor guide performance |
US9367690B2 (en) * | 2014-07-01 | 2016-06-14 | Moxa Inc. | Encryption and decryption methods applied on operating system |
EP3388944A1 (en) * | 2017-04-13 | 2018-10-17 | TTTech Computertechnik AG | Method for error detection within an operating system |
Citations (23)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4401208A (en) | 1981-04-13 | 1983-08-30 | Allmacher Jr Daniel S | Accumulating conveyor system |
US5379342A (en) | 1993-01-07 | 1995-01-03 | International Business Machines Corp. | Method and apparatus for providing enhanced data verification in a computer system |
US5421006A (en) | 1992-05-07 | 1995-05-30 | Compaq Computer Corp. | Method and apparatus for assessing integrity of computer system software |
US5963738A (en) | 1994-02-28 | 1999-10-05 | Kabushiki Kaisha Toshiba | Computer system for reading/writing system configuration using I/O instruction |
KR20000025197A (en) | 1998-10-09 | 2000-05-06 | 윤종용 | Computer booting method for system diagnosis |
KR20000061449A (en) | 1999-03-26 | 2000-10-16 | 윤종용 | Self testing method and apparatus in computer system |
US6185678B1 (en) | 1997-10-02 | 2001-02-06 | Trustees Of The University Of Pennsylvania | Secure and reliable bootstrap architecture |
WO2001059564A2 (en) | 2000-02-11 | 2001-08-16 | Intel Corporation | Protected boot flow |
KR20020007090A (en) | 2000-07-15 | 2002-01-26 | 윤종용 | Method and system for booting recovery a computer |
US6356529B1 (en) | 1999-08-12 | 2002-03-12 | Converse, Ltd. | System and method for rapid wireless application protocol translation |
US6401208B2 (en) | 1998-07-17 | 2002-06-04 | Intel Corporation | Method for BIOS authentication prior to BIOS execution |
US6519552B1 (en) * | 1999-09-15 | 2003-02-11 | Xerox Corporation | Systems and methods for a hybrid diagnostic approach of real time diagnosis of electronic systems |
US6625730B1 (en) | 2000-03-31 | 2003-09-23 | Hewlett-Packard Development Company, L.P. | System for validating a bios program and memory coupled therewith by using a boot block program having a validation routine |
US20040003226A1 (en) * | 2002-06-28 | 2004-01-01 | Collins David L. | Method and apparatus for recovering from corrupted system firmware in a computer system |
US20040059917A1 (en) * | 2002-02-07 | 2004-03-25 | Leslie Powers | System and method for authentication and fail-safe transmission of safety messages |
US20040064457A1 (en) | 2002-09-27 | 2004-04-01 | Zimmer Vincent J. | Mechanism for providing both a secure and attested boot |
US20050021968A1 (en) | 2003-06-25 | 2005-01-27 | Zimmer Vincent J. | Method for performing a trusted firmware/bios update |
US20050108564A1 (en) | 2003-11-13 | 2005-05-19 | International Business Machines Corporation | Reducing the boot time of a TCPA based computing system when the Core Root of Trust Measurement is embedded in the boot block code |
US7231512B2 (en) | 2002-12-18 | 2007-06-12 | Intel Corporation | Technique for reconstituting a pre-boot firmware environment after launch of an operating system |
US7237126B2 (en) * | 2001-09-28 | 2007-06-26 | Hewlett-Packard Development Company, L.P. | Method and apparatus for preserving the integrity of a management subsystem environment |
US7308714B2 (en) * | 2001-09-27 | 2007-12-11 | International Business Machines Corporation | Limiting the output of alerts generated by an intrusion detection sensor during a denial of service attack |
US7340638B2 (en) * | 2003-01-30 | 2008-03-04 | Microsoft Corporation | Operating system update and boot failure recovery |
US7430658B2 (en) * | 2004-02-26 | 2008-09-30 | Xilinx, Inc. | Method and apparatus for controlling a processor in a data processing system |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TW200603083A (en) * | 2004-03-23 | 2006-01-16 | Matsushita Electric Ind Co Ltd | Recording apparatus, reproducing apparatus, host apparatus, drive apparatus, reocrding method, reproducing method, program, and information recording medium |
-
2005
- 2005-02-07 US US11/053,080 patent/US7793347B2/en active Active
-
2006
- 2006-02-03 WO PCT/US2006/004095 patent/WO2006086302A1/en active Application Filing
- 2006-02-03 CN CN2006800114167A patent/CN101176069B/en active Active
- 2006-02-06 TW TW095103880A patent/TWI384356B/en active
Patent Citations (24)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4401208A (en) | 1981-04-13 | 1983-08-30 | Allmacher Jr Daniel S | Accumulating conveyor system |
US5421006A (en) | 1992-05-07 | 1995-05-30 | Compaq Computer Corp. | Method and apparatus for assessing integrity of computer system software |
US5379342A (en) | 1993-01-07 | 1995-01-03 | International Business Machines Corp. | Method and apparatus for providing enhanced data verification in a computer system |
US5963738A (en) | 1994-02-28 | 1999-10-05 | Kabushiki Kaisha Toshiba | Computer system for reading/writing system configuration using I/O instruction |
US6185678B1 (en) | 1997-10-02 | 2001-02-06 | Trustees Of The University Of Pennsylvania | Secure and reliable bootstrap architecture |
US6401208B2 (en) | 1998-07-17 | 2002-06-04 | Intel Corporation | Method for BIOS authentication prior to BIOS execution |
KR20000025197A (en) | 1998-10-09 | 2000-05-06 | 윤종용 | Computer booting method for system diagnosis |
KR20000061449A (en) | 1999-03-26 | 2000-10-16 | 윤종용 | Self testing method and apparatus in computer system |
US6356529B1 (en) | 1999-08-12 | 2002-03-12 | Converse, Ltd. | System and method for rapid wireless application protocol translation |
US6519552B1 (en) * | 1999-09-15 | 2003-02-11 | Xerox Corporation | Systems and methods for a hybrid diagnostic approach of real time diagnosis of electronic systems |
WO2001059564A2 (en) | 2000-02-11 | 2001-08-16 | Intel Corporation | Protected boot flow |
US6711675B1 (en) * | 2000-02-11 | 2004-03-23 | Intel Corporation | Protected boot flow |
US6625730B1 (en) | 2000-03-31 | 2003-09-23 | Hewlett-Packard Development Company, L.P. | System for validating a bios program and memory coupled therewith by using a boot block program having a validation routine |
KR20020007090A (en) | 2000-07-15 | 2002-01-26 | 윤종용 | Method and system for booting recovery a computer |
US7308714B2 (en) * | 2001-09-27 | 2007-12-11 | International Business Machines Corporation | Limiting the output of alerts generated by an intrusion detection sensor during a denial of service attack |
US7237126B2 (en) * | 2001-09-28 | 2007-06-26 | Hewlett-Packard Development Company, L.P. | Method and apparatus for preserving the integrity of a management subsystem environment |
US20040059917A1 (en) * | 2002-02-07 | 2004-03-25 | Leslie Powers | System and method for authentication and fail-safe transmission of safety messages |
US20040003226A1 (en) * | 2002-06-28 | 2004-01-01 | Collins David L. | Method and apparatus for recovering from corrupted system firmware in a computer system |
US20040064457A1 (en) | 2002-09-27 | 2004-04-01 | Zimmer Vincent J. | Mechanism for providing both a secure and attested boot |
US7231512B2 (en) | 2002-12-18 | 2007-06-12 | Intel Corporation | Technique for reconstituting a pre-boot firmware environment after launch of an operating system |
US7340638B2 (en) * | 2003-01-30 | 2008-03-04 | Microsoft Corporation | Operating system update and boot failure recovery |
US20050021968A1 (en) | 2003-06-25 | 2005-01-27 | Zimmer Vincent J. | Method for performing a trusted firmware/bios update |
US20050108564A1 (en) | 2003-11-13 | 2005-05-19 | International Business Machines Corporation | Reducing the boot time of a TCPA based computing system when the Core Root of Trust Measurement is embedded in the boot block code |
US7430658B2 (en) * | 2004-02-26 | 2008-09-30 | Xilinx, Inc. | Method and apparatus for controlling a processor in a data processing system |
Non-Patent Citations (10)
Title |
---|
Final Office Action, Mail Date Nov. 6, 2008; U.S. Appl. No. 11/053,081. |
Final Office Action, Mail Date Oct. 26, 2009; U.S. Appl. No. 11/053,081. |
Final Office Action; Mail Date Feb. 1, 2010; U.S. Appl. No. 11/053,081. |
First Office Action; Mail Mail Date Aug. 21, 2009; Application No.: 2006800088798. |
International Preliminary Report, Mail Date Aug. 7, 2007. |
International Search Report and Written Opinion, Mail Date Jun. 19, 2006. |
Non Final Office Action, Mail Date Feb. 25, 2008; U.S. Appl. No. 11/053,081. |
Non Final Office Action, Mail Date Mar. 3, 2009; U.S. Appl. No. 11/053,081. |
Office Action Dated Apr. 19, 2010; U.S. Appl. No. 11/053,081. |
Pentium Pro Family Developer'S Manual, vol. 3: Operating System Guide, Intel 242692, Revision 1.0, Dec. 1995, Chapter 9, pp. 1-15. |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110131403A1 (en) * | 2008-08-01 | 2011-06-02 | Hewlett-Packard Developement Company, Lp | Verifying firmware |
US8607216B2 (en) * | 2008-08-01 | 2013-12-10 | Palm, Inc. | Verifying firmware |
US8931096B2 (en) | 2008-10-29 | 2015-01-06 | International Business Machines Corporation | Detecting malicious use of computer resources by tasks running on a computer system |
US9251345B2 (en) | 2008-10-29 | 2016-02-02 | International Business Machines Corporation | Detecting malicious use of computer resources by tasks running on a computer system |
US11856593B2 (en) | 2012-01-20 | 2023-12-26 | Intellectual Ventures Holding 81 Llc | Communication in a wireless network using restricted bandwidths |
US20130227264A1 (en) * | 2012-02-24 | 2013-08-29 | Samsung Electronics Co. Ltd. | Integrity protection method and apparatus for mobile terminal |
US9235709B2 (en) * | 2012-02-24 | 2016-01-12 | Samsung Electronics Co., Ltd. | Integrity protection method and apparatus for mobile terminal |
Also Published As
Publication number | Publication date |
---|---|
US20060179483A1 (en) | 2006-08-10 |
CN101176069A (en) | 2008-05-07 |
WO2006086302A1 (en) | 2006-08-17 |
TW200636445A (en) | 2006-10-16 |
TWI384356B (en) | 2013-02-01 |
CN101176069B (en) | 2012-01-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7793347B2 (en) | Method and system for validating a computer system | |
JP6404283B2 (en) | System and method for executing instructions to initialize a secure environment | |
JP4708414B2 (en) | Autonomous memory checker for runtime security assurance | |
EP1209563B1 (en) | Method and system for allowing code to be securely initialized in a computer | |
JP5512892B2 (en) | Method and apparatus for protecting a segment of memory | |
US9361170B2 (en) | Method for checking data consistency in a system on chip | |
JP5335634B2 (en) | Computer that protects the privilege level of system administration mode | |
EP3198399B1 (en) | Detecting a change to system management mode bios code | |
US20080244746A1 (en) | Run-time remeasurement on a trusted platform | |
US20120090016A1 (en) | Method and apparatus for registering agents onto a virtual machine monitor | |
US20230039602A1 (en) | Hypervisor level signature checks for encrypted trusted execution environments | |
US20200034540A1 (en) | Executing processes in sequence | |
US11256589B2 (en) | Detecting a change to system management mode bios code | |
JP2022052018A (en) | Information processing device | |
EP3940565A1 (en) | System management states |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: TRANSMETA CORPORATION, CALIFORNIA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:ROZAS, GUILLERMO J.;REEL/FRAME:016947/0404 Effective date: 20050202 |
|
AS | Assignment |
Owner name: TRANSMETA LLC, CALIFORNIA Free format text: MERGER;ASSIGNOR:TRANSMETA CORPORATION;REEL/FRAME:022454/0522 Effective date: 20090127 Owner name: TRANSMETA LLC,CALIFORNIA Free format text: MERGER;ASSIGNOR:TRANSMETA CORPORATION;REEL/FRAME:022454/0522 Effective date: 20090127 |
|
AS | Assignment |
Owner name: INTELLECTUAL VENTURE FUNDING LLC, NEVADA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:TRANSMETA LLC;REEL/FRAME:023268/0771 Effective date: 20090128 Owner name: INTELLECTUAL VENTURE FUNDING LLC,NEVADA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:TRANSMETA LLC;REEL/FRAME:023268/0771 Effective date: 20090128 |
|
STCF | Information on status: patent grant |
Free format text: PATENTED CASE |
|
FPAY | Fee payment |
Year of fee payment: 4 |
|
AS | Assignment |
Owner name: INTELLECTUAL VENTURES HOLDING 81 LLC, NEVADA Free format text: MERGER;ASSIGNOR:INTELLECTUAL VENTURE FUNDING LLC;REEL/FRAME:036711/0160 Effective date: 20150827 |
|
AS | Assignment |
Owner name: INTELLECTUAL VENTURES HOLDING 81 LLC, NEVADA Free format text: CORRECTIVE ASSIGNMENT TO CORRECT THE ASSIGNOR'S NAME PREVIOUSLY RECORDED AT REEL: 036711 FRAME: 0160. ASSIGNOR(S) HEREBY CONFIRMS THE MERGER;ASSIGNOR:INTELLECTUAL VENTURES FUNDING LLC;REEL/FRAME:036797/0356 Effective date: 20150827 |
|
MAFP | Maintenance fee payment |
Free format text: PAYMENT OF MAINTENANCE FEE, 8TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1552) Year of fee payment: 8 |
|
MAFP | Maintenance fee payment |
Free format text: PAYMENT OF MAINTENANCE FEE, 12TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1553); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY Year of fee payment: 12 |